Author
Topic: OpenVPN Site to Site Issue (Read 244 times)

The site to site connection is UP and when doing a ping test from pfsense diagnostics, the VPN Client can ping tunnel network IP on the client and server side. It can also ping the remote network IP of the OVPN Server/Pfsense IP.

When I try to ping the same IPs from a workstation on the client side, I can only ping the local tunnel network IP and not the remote tunnel network IP or the OVPN server.

I have checked other postings and tried a few things but still cannot figure out how to fix this. I assume it's routing so looking for what commands I need to add to the options box.

I have set "IPv4 Remote Network(s)" on both client and server to use the same IP network.

I have set up the default gateway as well for both sides of the networks.

For something different, I reversed the setup of who is server and client. I found that I was able to ping from a workstation the local and remote tunnel IP but not the clients local gateway IP.During testing I inadvertently had both VPN setups running and found that I could ping from a workstation the client gateway local IP.

Wat. Remote network field only appears for the device configured as the "server" - "client" side does not get that field.

Server and Client both have remote networks field in a point-to-point configuration. It is the only way to add the kernel routes that forward the traffic into OpenVPN when you can't push them to the client.

Post the server1.conf from the server and the client1.conf from the client, so we can offer a targeted troubleshooting effort.

I see one issue right off the bat:

Quote

I have set "IPv4 Remote Network(s)" on both client and server to use the same IP network.

In a routed solution, all LAN subnets have to be unique and non-overlapping... i.e. the server-side LAN has to be different than the client-side LAN, which should be reflected accordingly in the IPv4 Remote network(s) box on both sides.